HP 5500 EI series Configuration Manual page 304
Hide thumbs
Also See for 5500 EI series:
- Configuration manual (238 pages) ,
- Installation manual (69 pages) ,
- Specifications (47 pages)
Table of Contents
Advertisement
algorithm to SHA1. Create IPsec profile named policy001, specify the manual mode for it,
reference IPsec transform set tran1, and set the SPIs of the inbound and outbound SAs to 12345
and the keys for the inbound and outbound SAs using ESP to abcdefg. Create an IPsec transform
set named tran2, and set the encapsulation mode to transport mode, the security protocol to ESP,
the encryption algorithm to DES, and authentication algorithm to SHA1. Create IPsec profile
named policy002, specify the manual mode for it, reference IPsec transform set tran2, and set the
SPIs of the inbound and outbound SAs to 54321 and the keys for the inbound and outbound SAs
using ESP to gfedcba.
[RouterB] ipsec transform-set tran1
[RouterB-ipsec-transform-set-tran1] encapsulation-mode transport
[RouterB-ipsec-transform-set-tran1] esp encryption-algorithm des
[RouterB-ipsec-transform-set-tran1] esp authentication-algorithm sha1
[RouterB-ipsec-transform-set-tran1] quit
[RouterB] ipsec profile policy001 manual
[RouterB-ipsec-profile-policy001-manual] transform-set tran1
[RouterB-ipsec-profile-policy001-manual] sa spi outbound esp 12345
[RouterB-ipsec-profile-policy001-manual] sa spi inbound esp 12345
[RouterB-ipsec-profile-policy001-manual] sa string-key outbound esp simple abcdefg
[RouterB-ipsec-profile-policy001-manual] sa string-key inbound esp simple abcdefg
[RouterB-ipsec-profile-policy001-manual] quit
[RouterB] ipsec transform-set tran2
[RouterB-ipsec-transform-set-tran2] encapsulation-mode transport
[RouterB-ipsec-transform-set-tran2] esp encryption-algorithm des
[RouterB-ipsec-transform-set-tran2] esp authentication-algorithm sha1
[RouterB-ipsec-transform-set-tran2] quit
[RouterB] ipsec profile policy002 manual
[RouterB-ipsec-profile-policy002-manual] transform-set tran2
[RouterB-ipsec-profile-policy002-manual] sa spi outbound esp 54321
[RouterB-ipsec-profile-policy002-manual] sa spi inbound esp 54321
[RouterB-ipsec-profile-policy002-manual] sa string-key outbound esp simple gfedcba
[RouterB-ipsec-profile-policy002-manual] sa string-key inbound esp simple gfedcba
[RouterB-ipsec-profile-policy002-manual] quit
# On Router C, create an IPsec transform set named tran2, and set the encapsulation mode to
transport mode, the security protocol to ESP, the encryption algorithm to DES, and authentication
algorithm to SHA1. Create IPsec profile named policy002, specify the manual mode for it,
reference IPsec transform set tran2, and set the SPIs of the inbound and outbound SAs to 54321
and the keys for the inbound and outbound SAs using ESP to gfedcba.
[RouterC] ipsec transform-set tran2
[RouterC-ipsec-transform-set-tran2] encapsulation-mode transport
[RouterC-ipsec-transform-set-tran2] esp encryption-algorithm des
[RouterC-ipsec-transform-set-tran2] esp authentication-algorithm sha1
[RouterC-ipsec-transform-set-tran2] quit
[RouterC] ipsec profile policy002 manual
[RouterC-ipsec-profile-policy002-manual] transform-set tran2
[RouterC-ipsec-profile-policy002-manual] sa spi outbound esp 54321
[RouterC-ipsec-profile-policy002-manual] sa spi inbound esp 54321
[RouterC-ipsec-profile-policy002-manual] sa string-key outbound esp simple gfedcba
[RouterC-ipsec-profile-policy002-manual] sa string-key inbound esp simple gfedcba
[RouterC-ipsec-profile-policy002-manual] quit
293
Advertisement
Table of Contents
Troubleshooting
